<HTML>
<!-- --------------------------------------------------------
- deFusinator - JavaScript de-obfuscator plugin for Chrome
- by Tamas Rudnai, all rights reserved
------------------------------------------------------------ -->

<HEAD>
    <TITLE>About deFusination</TITLE>
    <STYLE>
    h4 {
      margin-bottom: 0px;
      padding-bottom: 0px;
    }
    </STYLE>
</HEAD>

<BODY>
<H1>About deFusinator</H1>
<H4><I>deFusinator is a JavaScript de-obfuscator plugin for Chrome browser.</I></H4>
<I>by Tamas Rudnai (c) 2011 -- tamas.rudnai@gmail.com</I>
<H3>Features</H3>
<UL>
<LI>Displays all iFrames in a page, even the dynamically created ones</LI>
<LI>Displays all the JavaScripts used in the page so then can identify the obfuscated ones as well as the ones hosted on a malicious site</LI>
<LI>De-obfuscates induvidual scripts by just clicking on them</LI>
<LI>Check iFrames and script source pages with few site checkers by clicking on them</LI>
</UL>
<H3>History</H3>
<P> The origin of the project was my deFus.js code which created a special DOM emulation within SpiderMonkey so that I could de-obfuscate most of the malicious sample I analyze day-by-day. The certain limitation of this was the lack of full DOM implementation and the time needed to grab the targeted JavaScript from a page and push it to this system.

deFusinator was a logical follow up for that project, as Chrome browser gives a full-blown DOM implementation plus I do not need to copy+paste the script from the page source, just point and click the script and see what it does.</P>

</BODY>

</HTML>

